Mind your locales with glibc upgrades when using PostgreSQL
Emma Heinle
2 years
How to prevent duplicate exported resources across a Puppet Infrastructure
Moritz Kraus
2 years
When to use a function over a defined in Puppet
Moritz Kraus
2 years
Create gitlab container expiry config in every repo in a group
Claus-Theodor Riegg
2 years
MySQL client: Double check the used character set with utf8mb4
Andreas Vöst
2 years
Why doesn't my prometheus relabel_config work?
Claus-Theodor Riegg
2 years
load balance unix sockets to UDP destinations
Moritz Kraus
2 years
Use systemd-run as an alternative for screen
Andreas Vöst
2 years
Networking restart on FreeBSD
Claus-Theodor Riegg
9 years
GitLab scheduled pipeline: Don't notify owner
Andreas Vöst
2 years
HowTo: Fix nginx not reloading with long gzip_types lines
Marius Schuller
2 years
Disable AWS Free Tier Usage Alerts
Andreas Vöst
2 years
Terragrunt/terraform: fork/exec argument list too long
Stefan Langenmaier
2 years
HowTo: Clone and refresh all repos in a GitLab Group
Emma Heinle
2 years
HowTo: Get postgres shell in kubernetes
Emma Heinle
2 years
HowTo: Get kubernetes secrets in plaintext
Emma Heinle
2 years
Bolt: Run commands from a file
Andreas Vöst
2 years
Delete unresponsive rabbitmq queue
Kim Klotz
2 years
Replacing exported resources with puppetdb queries
Claus-Theodor Riegg
2 years
Keepalived VRRP FAQ
Moritz Kraus
2 years
Bundler dependency issues with Phusion Passenger
Kim Klotz
3 years
Terraform: Deploying code for lambda functions
Emma Heinle
3 years
Terraform plugin cache
Emma Heinle
3 years
Resize an Areca Raid by swapping disks
Kim Klotz
3 years

puppet variable variable name

Updated . Posted . Visible to the public.

example

We want to make the following firewall rule to be applyable to different network interfaces (for e.g. different environments) with just one variable:

firewall { "010-reject-port":
  ensure      => present,
  dport       => [ 80 ],
  destination => $::ipaddress_eth0,
  proto       => 'tcp',
  action      => 'drop',
  iniface     => 'eth0',
}

We can create a $firewall_interface variable and apply it to iniface but how can we ensure that the correct ipaddress factof the corresponding interface is used for destination?

Solution:

Use getvar from the puppetlabs stdlib Show archive.org snapshot :

$firewall_interface = 'eth0'

firewall { "010-reject-port":
  ensure      => present,
  dport       => [ 80 ],
  destination => getvar("::ipaddress_${firewall_interface}"),
  proto       => 'tcp',
  action      => 'drop',
  iniface     => $firewall_interface,
}
Claus-Theodor Riegg
Say thanks4
Last edit
Andreas Herz
Keywords
ops
License
Source code in this card is licensed under the MIT License.
Privacy policy Terms of service Imprint
This website uses short-lived cookies to improve usability.
or learn more